Full Disclosure: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

63 messages starting Mar 14 22 and ending Mar 09 22
Date index | Thread index | Author index

Apple Product Security via Fulldisclosure

APPLE-SA-2022-03-14-2 watchOS 8.5 Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-14-5 macOS Big Sur 11.6.5 Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-14-1 iOS 15.4 and iPadOS 15.4 Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-14-6 Security Update 2022-003 Catalina Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-14-4 macOS Monterey 12.3 Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-14-8 Logic Pro X 10.7.3 Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-31-2 macOS Monterey 12.3.1 Apple Product Security via Fulldisclosure (Mar 31)
APPLE-SA-2022-03-14-9 GarageBand 10.4.6 Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-14-10 iTunes 12.12.3 for Windows Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-14-3 tvOS 15.4 Apple Product Security via Fulldisclosure (Mar 14)
APPLE-SA-2022-03-31-1 iOS 15.4.1 and iPadOS 15.4.1 Apple Product Security via Fulldisclosure (Mar 31)
APPLE-SA-2022-03-14-7 Xcode 13.3 Apple Product Security via Fulldisclosure (Mar 14)

Asterisk Security Team

AST-2022-004: pjproject: integer underflow on STUN message Asterisk Security Team (Mar 04)
AST-2022-006: pjproject: unconstrained malformed multipart SIP message Asterisk Security Team (Mar 04)
AST-2022-005: pjproject: undefined behavior after freeing a dialog set Asterisk Security Team (Mar 04)

CFP - ESORICS 2022

[CFP-ESORICS 2022]: 27th European Symposium on Research in Computer Security (ESORICS) 2022 CFP - ESORICS 2022 (Mar 20)

Egidio Romano

[KIS-2022-01] ImpressCMS <= 1.4.2 (autologin.php) Authentication Bypass Vulnerability Egidio Romano (Mar 22)
[KIS-2022-05] Joomla! <= 4.1.0 (Tar.php) Zip Slip Vulnerability Egidio Romano (Mar 29)
ImpressCMS: from unauthenticated SQL injection to RCE Egidio Romano (Mar 23)
[KIS-2022-03] ImpressCMS <= 1.4.2 (findusers.php) Incorrect Access Control Vulnerability Egidio Romano (Mar 22)
[KIS-2022-04] ImpressCMS <= 1.4.3 (findusers.php) SQL Injection Vulnerability Egidio Romano (Mar 22)
Re: ImpressCMS: from unauthenticated SQL injection to RCE Egidio Romano (Mar 28)
[KIS-2022-02] ImpressCMS <= 1.4.2 (image-edit.php) Path Traversal Vulnerability Egidio Romano (Mar 22)

Emanuel DUSS

CVE-2021-45491: Exportable Cleartext Passwords in the 3CX Phone System Emanuel DUSS (Mar 20)
CVE-2021-45490: Missing Certificate Verification in 3CX Client for Windows (legacy), Android & iOS Emanuel DUSS (Mar 20)

Jonathan Gregson via Fulldisclosure

Mr. Post - Outlook Add-in - Data Theft Risk Jonathan Gregson via Fulldisclosure (Mar 09)

Jordy Zomer

PHP filter_var vulnerability Jordy Zomer (Mar 28)

Julien Ahrens (RCE Security)

[CVE-2021-42063] SAP Knowledge Warehouse <= 7.50 "SAPIrExtHelp" Reflected XSS Julien Ahrens (RCE Security) (Mar 20)

Kelvin Yip

CVE-2021-45040 - Laravel Media Library Pro <=2.1.6 - Arbitrary File Upload (Unauthenticated) Kelvin Yip (Mar 14)

Knights of Nynex via Fulldisclosure

The Knights of NYNEX presents: Akhlut prowling terror Knights of Nynex via Fulldisclosure (Mar 25)

malvuln

Backdoor.Win32.BirdSpy.b / Weak Hardcoded Credentials malvuln (Mar 25)
Backdoor.Win32.Cyn.20 / Insecure Permissions malvuln (Mar 28)
Backdoor.Win32.Cafeini.b / Weak Hardcoded Credentials malvuln (Mar 28)
Backdoor.Win32.Chubo.c / Unauthenticated Remote Command Execution malvuln (Mar 28)
BuilderPandoraRat.b - (Pandora Rat 2.2 [Beta].exe) / Insecure Credential Storage malvuln (Mar 20)
Backdoor.Win32.Agent.bxxn / Open Proxy malvuln (Mar 25)
Backdoor.Win32.RemoteNC.beta4 / Unauthenticated Remote Command Execution malvuln (Mar 09)
Loki RAT (Relapse) / SQL Injection malvuln (Mar 09)
Hades RAT - Web Panel / Insecure Credential Storage malvuln (Mar 14)
Backdoor.Win32.FTP.Nuclear.10 / Hardcoded Credentials malvuln (Mar 09)
Backdoor.Win32.DirectConnection.103 (1.0 RAT-Tool) / Weak Hardcoded Password malvuln (Mar 09)
BuilderTorCTPHPRAT.b / Remote Persistent XSS malvuln (Mar 20)
Backdoor.Win32.Chubo.c / Cross Site Scripting (XSS) malvuln (Mar 28)
Adversary3 v1.0 - Malware vulnerability intel tool for third-party attackers. malvuln (Mar 20)
BuilderTorCTPHPRAT.b / Arbitrary File Upload - RCE malvuln (Mar 20)
BuilderTorCTPHPRAT.b / Insecure Credential Storage malvuln (Mar 20)
Backdoor.Win32.BluanWeb / Unauthenticated Remote Command Execution malvuln (Mar 09)
Backdoor.Win32.Augudor.a / Unauthenticated Remote File Write - RCE malvuln (Mar 09)
Backdoor.Win32.BluanWeb / Unauthenticated Remote Code Execution malvuln (Mar 09)
BuilderOrcus (Orcus.Administration-cracked.exe) / Insecure Credential Storage malvuln (Mar 20)
Backdoor.Win32.BluanWeb / Information Disclosure malvuln (Mar 09)
BuilderRevengeRAT - (Revenge-RAT v0.3) / XML External Entity Injection malvuln (Mar 20)
RedLine.MainPanel - cracked.exe / Insecure Permissions malvuln (Mar 14)
Loki RAT (Relapse) / Directory Traversal - Arbitrary File Delete malvuln (Mar 09)
Backdoor.Win32.Cafeini.b / Denial of Service malvuln (Mar 28)
Backdoor.Win32.BNLite / Remote Stack Buffer Overflow malvuln (Mar 09)
BuilderOrcus (Orcus.Administration-cracked.exe) / Insecure Permissions malvuln (Mar 20)
Hades RAT - Web Panel / Information Disclosure malvuln (Mar 14)
Hades RAT - Web Panel / Remote Persistent XSS malvuln (Mar 14)
Backdoor.Win32.Avstral.e / Unauthenticated Remote Command Execution malvuln (Mar 28)

Martin Heiland via Fulldisclosure

Open-Xchange Security Advisory 2022-03-21 Martin Heiland via Fulldisclosure (Mar 21)

Oliver Schwarz

[SYSS-2021-058] Razer Synapse - Local Privilege Escalation Oliver Schwarz (Mar 25)

psy

New Release: UFONet v1.8 - "DarK-PhAnT0m!"... psy (Mar 09)

Previous period

Next period